Re: [Last-Call] Opsdir telechat review of draft-ietf-acme-dtnnodeid-10
Linda Dunbar <linda.dunbar@futurewei.com> Fri, 21 October 2022 16:46 UTC
Return-Path: <linda.dunbar@futurewei.com>
X-Original-To: last-call@ietfa.amsl.com
Delivered-To: last-call@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4BBBCC1526E0; Fri, 21 Oct 2022 09:46:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=futurewei.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fgDvxL6W8prp; Fri, 21 Oct 2022 09:46:02 -0700 (PDT)
Received: from NAM12-BN8-obe.outbound.protection.outlook.com (mail-bn8nam12on2096.outbound.protection.outlook.com [40.107.237.96]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 07C73C14E514; Fri, 21 Oct 2022 09:45:46 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=S/sWOl5EAOft4YcxY2H1nN8unLUhhTFV6O5JP0fLIwCJ4soHjEo+tAdrgMxHfLgxahdr+odWkLlD7cPzZSV+AADcq6SbaiLJqcDd3yN1CiCm9F+uXZo/oJhiagRsy3jVSJIKV00757oKRdgcMfNJWEqJMmPJQCPT9JaIoZ1gdmJOQGwv4fyQcQ9eibyNnPto8cOD6KspakvAqqi+QbHTeuLeh8Tll0WNB391viYr8YOhC2cd9DTCgNKThCN6kHCLB7/3n2AaCattmQwhexh3ZTYz0M9KdEXKafdQ50Y/Hr7uQDPszi3A2ftOC3C1sg8ok7z3/N47wH4xh3dnFdG7aQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=vOhvkQY4iUv6z4nFoZDgyIwIdRbhsHtB8WC+EkjR6l0=; b=Z/WERWmmep7asSBETnw8JVQnTDlUGYLG+J2yCIMv+ZLIKYAusOazdaKWrEoQo/6wi20YSeMgjAiU6ZxX8DMM/Ohlwz+j+TJ7W0JIghTcQYjNn2yKweqM1VqFQMzsuyypljwKEjIDcevdBPiybA487ubc4W8D9ub2MWUc89y1XTfr3IcvfKKI/N57N+/uRI7XWSMEXgYNrewOXOkuZXQtoNUSUDojVV4xsPnMNJ8KF5rkmPwAAI8vvuvQTO+Of0syY7AwNv7p+r1XSNpkzX3juzqWFVAnij0QK3gqYdfmqToSYAEl2PnCxyV9XmPL3cHSJ/nWMKMMbec7hs+Bqh7wow==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=futurewei.com; dmarc=pass action=none header.from=futurewei.com; dkim=pass header.d=futurewei.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=Futurewei.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=vOhvkQY4iUv6z4nFoZDgyIwIdRbhsHtB8WC+EkjR6l0=; b=VHepssbZ5TaGLrlODi7CeNFiBci49LVqZr2fso5vpr2l3yaOw0zPzhZ53IEWiRSvUv8WkoyHIqjM3N3TIEJCR6a+qSfBY6L3z2dYOHMkqH1X8yfqdi8qREChe0ierMrSjZp0wMKL5mipzk9ibertCZnS+Vks//uiT5LIgiRhL2g=
Received: from CO1PR13MB4920.namprd13.prod.outlook.com (2603:10b6:303:f7::17) by MW4PR13MB5912.namprd13.prod.outlook.com (2603:10b6:303:1b7::8) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5746.8; Fri, 21 Oct 2022 16:45:40 +0000
Received: from CO1PR13MB4920.namprd13.prod.outlook.com ([fe80::7cc0:ab06:11dd:7f74]) by CO1PR13MB4920.namprd13.prod.outlook.com ([fe80::7cc0:ab06:11dd:7f74%5]) with mapi id 15.20.5746.016; Fri, 21 Oct 2022 16:45:40 +0000
From: Linda Dunbar <linda.dunbar@futurewei.com>
To: Roman Danyliw <rdd@cert.org>, "ops-dir@ietf.org" <ops-dir@ietf.org>
CC: "acme@ietf.org" <acme@ietf.org>, "draft-ietf-acme-dtnnodeid.all@ietf.org" <draft-ietf-acme-dtnnodeid.all@ietf.org>, "last-call@ietf.org" <last-call@ietf.org>
Thread-Topic: Opsdir telechat review of draft-ietf-acme-dtnnodeid-10
Thread-Index: AQHY5N8vm9a5GAFVE0uBDPW+hfxAaq4X3u4AgADcnAA=
Date: Fri, 21 Oct 2022 16:45:40 +0000
Message-ID: <DE4B11FF-1E07-44FA-9D9E-7EAE51BC393F@futurewei.com>
References: <166630648814.52985.10284820365346811952@ietfa.amsl.com> <BN2P110MB11076DDD8A34680DE318379EDC2A9@BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM> <855DAAAE-A1BF-4577-922D-BC0F671CD0E8@futurewei.com>
In-Reply-To: <855DAAAE-A1BF-4577-922D-BC0F671CD0E8@futurewei.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.66.22101101
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=futurewei.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: CO1PR13MB4920:EE_|MW4PR13MB5912:EE_
x-ms-office365-filtering-correlation-id: 3b9069b5-fea9-4c70-cde7-08dab383b055
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CO1PR13MB4920.namprd13.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230022)(4636009)(396003)(39850400004)(346002)(376002)(136003)(366004)(451199015)(45080400002)(316002)(110136005)(478600001)(54906003)(6506007)(53546011)(71200400001)(91956017)(66476007)(6486002)(64756008)(66446008)(966005)(66556008)(76116006)(4326008)(8676002)(66946007)(8936002)(41300700001)(186003)(2906002)(26005)(6512007)(5660300002)(2616005)(44832011)(83380400001)(36756003)(122000001)(33656002)(38070700005)(38100700002)(86362001)(45980500001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="utf-8"
Content-ID: <0AD5F9EDE70F4E499B72CE648C21BD1A@namprd13.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: Futurewei.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CO1PR13MB4920.namprd13.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 3b9069b5-fea9-4c70-cde7-08dab383b055
X-MS-Exchange-CrossTenant-originalarrivaltime: 21 Oct 2022 16:45:40.6691 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 0fee8ff2-a3b2-4018-9c75-3a1d5591fedc
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 9W0YZg/y71iPkcoksd3J1aIgPcoIyFKl0vPmxYTkTkhlGfaoAE+n2dsCeLa6T8VQ49ZCK4/hy2f8bnC5zqVdSg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MW4PR13MB5912
Archived-At: <https://mailarchive.ietf.org/arch/msg/last-call/2Uzwniyw_CmBut7ZfSUfV8e-LBQ>
Subject: Re: [Last-Call] Opsdir telechat review of draft-ietf-acme-dtnnodeid-10
X-BeenThere: last-call@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IETF Last Calls <last-call.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/last-call>, <mailto:last-call-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/last-call/>
List-Post: <mailto:last-call@ietf.org>
List-Help: <mailto:last-call-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/last-call>, <mailto:last-call-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 21 Oct 2022 16:46:06 -0000
Roman, Can the mechanism specified in the draft be used to validate the Virtual Network IDs of SD-WAN edge devices? For example, an SDWAN edge deployed in a remote site, say a shopping mall, might advertise the routes and client VPN IDs to the BGP Route-Reflector (RR). The RR needs to validate the Client's IDs are legitimate. Can the mechanism specified in the draft do the job? Thanks, Linda On 10/20/22, 10:36 PM, "Linda Dunbar" <linda.dunbar@futurewei.com> wrote: Roman, With you bringing back the explanation, all makes sense to me now. Wish your explanation is incorporated into the document. Thanks, Linda On 10/20/22, 6:53 PM, "Roman Danyliw" <rdd@cert.org> wrote: Thanks for the re-review Linda. ACME WG: here is the thread from the IETF LC where proposed changes were discussed: https://nam11.safelinks.protection.outlook.com/?url=https%3A%2F%2Fmailarchive.ietf.org%2Farch%2Fmsg%2Flast-call%2FnujBgHd6ZKHY6fG58ZWBKzFGVWs%2F&data=05%7C01%7Clinda.dunbar%40futurewei.com%7C3d47157879904a302e3008dab2f65009%7C0fee8ff2a3b240189c753a1d5591fedc%7C1%7C0%7C638019068235813966%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=t83ICajIF%2FEIKzibHtGs0T9FFSQpSFmBxKdxxgGHkPY%3D&reserved=0 > -----Original Message----- > From: Linda Dunbar via Datatracker <noreply@ietf.org> > Sent: Thursday, October 20, 2022 6:55 PM > To: ops-dir@ietf.org > Cc: acme@ietf.org; draft-ietf-acme-dtnnodeid.all@ietf.org; last-call@ietf.org > Subject: Opsdir telechat review of draft-ietf-acme-dtnnodeid-10 > > Reviewer: Linda Dunbar > Review result: Has Issues > > I have reviewed this document as part of the Ops area directorate's ongoing > effort to review all IETF documents being processed by the IESG. These > comments were written primarily for the benefit of the Ops area directors. > Document editors and WG chairs should treat these comments just like any > other last call comments. > > This document specifies an extension to ACME protocol which allows an ACME > server to validate the Delay-Tolerant Networking Node ID for an ACME client. > > I had the following comments for the -07 version. I don't think the latest > version (-10) resolved my comments. > > Issues: > > The document didn't describe how the Node ID described in this document is > related to the Delay Tolerant Network. I see the mechanism can be equally > used in any network. What are the specifics related to the "Delay Tolerant > Network"? > It would be helpful if the document adds a paragraph explaining the specific > characteristics of the Delay-Tolerant Network that require the additional > parameters/types used for validating the Node-ID for an ACME client. > > Thank you, > > Linda Dunbar >
- [Last-Call] Opsdir telechat review of draft-ietf-… Linda Dunbar via Datatracker
- Re: [Last-Call] Opsdir telechat review of draft-i… Roman Danyliw
- Re: [Last-Call] Opsdir telechat review of draft-i… Linda Dunbar
- Re: [Last-Call] Opsdir telechat review of draft-i… Linda Dunbar
- Re: [Last-Call] Opsdir telechat review of draft-i… Roman Danyliw
- Re: [Last-Call] Opsdir telechat review of draft-i… Linda Dunbar
- Re: [Last-Call] Opsdir telechat review of draft-i… Roman Danyliw
- Re: [Last-Call] Opsdir telechat review of draft-i… Linda Dunbar
- Re: [Last-Call] Opsdir telechat review of draft-i… Deb Cooley
- Re: [Last-Call] Opsdir telechat review of draft-i… Linda Dunbar
- Re: [Last-Call] Opsdir telechat review of draft-i… Brian Sipos
- Re: [Last-Call] Opsdir telechat review of draft-i… Linda Dunbar